As prior art systems fail to produce end-to-end transport and routing mechanisms capable of secure, accurate, and timely delivery of real-time media, the present invention prescribes the method and process to facilitate server-less, IP based sessions across all of public and private network infrastructure without regard for network hardware or carrier makeup. The method and process claimed herein defines the application of well known standards in a unique fashion so as to facilitate transportation of TCP and UDP packets associated with a real-time multicast session in a secure manner while achieving unencumbered access through firewalls and across multiple carrier, public networks through IPSec based virtual networking.
Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A method for data transport that uses multicast protocols, the method comprising: initiating multicast routing instance of ingress or egress nodes of at least one virtual private networks, wherein each payload data is forwarded along a network where at least one client indicates interest in at least one multicast group address; creating at least one virtual private network with routing protocols on ends of each of a plurality of virtual private network tunnels; associating the multicast group address with the data payload and routing the data payload to multiple clients through the virtual private network tunnels, wherein the data payload is routed such that each tunnel node in a data payload route is multicast enabled; communicating a plurality of multicast addressed packets that are encapsulated within a private tunnel such that each tunnel node is specified as a multicast enabled router with specific instructions to construct and to maintain each virtual tunnel for payload transport; enabling each multicast router to instantiate a plurality of virtual private network tunnels between a plurality of creation points and a plurality of termination points between a public network and a private network; transporting the real-time data payload between the public network and the private network; and performing tunnel creation and tear-down that is initiated by a software application running on a client device.
A method for securely transporting real-time data across IP networks using multicast and VPNs without relying on a central server involves creating VPN tunnels between network endpoints and using multicast to efficiently distribute data. The method initializes multicast routing within the VPN, forwarding data only to clients who have expressed interest in a specific multicast group. Data payloads are associated with a multicast address and routed through the VPN tunnels, ensuring each node in the path is multicast-enabled. Multicast packets are encapsulated within the VPN tunnel. The system enables each multicast router to create VPN tunnels between public and private networks. A client-side software application initiates the creation and termination of these tunnels.
2. The method of claim 1 , wherein the data payload is not processed, compressed, decompressed, encrypted, decrypted or manipulated during transport.
This data transport method, as described where a method securely transports real-time data across IP networks using multicast and VPNs without relying on a central server, ensures that the data payload is transported without any processing, compression, decompression, encryption, decryption, or manipulation. The original payload is delivered end-to-end without alteration.
3. The method of claim 1 wherein the plurality of private network tunnels encompass hardware multicast routers.
This data transport method, as described where a method securely transports real-time data across IP networks using multicast and VPNs without relying on a central server, uses hardware multicast routers within the VPN tunnels. The private network tunnels are built upon existing hardware multicast infrastructure.
4. The method of claim 1 further comprising encrypting the application data payload during communications with the public network.
This data transport method, as described where a method securely transports real-time data across IP networks using multicast and VPNs without relying on a central server, further encrypts the application data payload during communications with the public network. This encryption step enhances security when transmitting data over untrusted public networks.
5. The method of claim 1 further comprising enabling at least one server to instantiate one or more communication channels.
This data transport method, as described where a method securely transports real-time data across IP networks using multicast and VPNs without relying on a central server, allows at least one server to initiate communication channels. While primarily server-less, the system can incorporate servers to establish communication paths.
6. A real time multipoint communications system that uses multicast protocols, the system comprising: a multicast routing instance of ingress or egress nodes of at least one virtual private networks, wherein each payload data is forwarded along a network where at least one client indicates interest in at least one multicast group address; at least one virtual private network comprising a plurality of private network tunnels, a multitask protocol applied to each port of each tunnel; a multicast group address associated with the data payload, the data payload routed to multiple clients via the virtual private network tunnels; a data payload route through the virtual private network tunnels comprising a plurality of tunnel nodes, each tunnel node of the route multicast enabled; a plurality of multicast addressed packets that are encapsulated within a private tunnel such that each tunnel node is specified as a multicast enabled router with specific instructions to construct and to maintain each virtual tunnel for payload transport; each multicast router configured to instantiate a plurality of virtual private network tunnels between a plurality of creation points and a plurality of termination points between a public network and a private network; and a software application running on a client device configured to initiate tunnel creation and tear-down.
A real-time multipoint communication system uses multicast protocols and VPNs to deliver data efficiently. It features multicast routing within VPN ingress/egress nodes, forwarding data only to interested clients. The system establishes VPNs with private tunnels and applies multicast to each tunnel port. A multicast group address is linked to the data, which is routed through VPN tunnels with multicast-enabled nodes. Multicast packets are encapsulated within a private tunnel, instructing each node to construct and maintain virtual tunnels. Multicast routers instantiate VPN tunnels between public and private networks. Tunnel creation and teardown are initiated by client software.
7. The system of claim 6 , wherein the data payload is not processed, compressed, decompressed, encrypted, decrypted or manipulated during transport.
This real-time multipoint communication system, as described where a system uses multicast protocols and VPNs to deliver data efficiently without relying on a central server, ensures the data payload isn't processed, compressed, decompressed, encrypted, decrypted, or manipulated during transport.
8. The system of claim 6 wherein the plurality of private network tunnels encompass hardware multicast routers.
This real-time multipoint communication system, as described where a system uses multicast protocols and VPNs to deliver data efficiently without relying on a central server, incorporates hardware multicast routers within its private network tunnels.
9. The system of claim 6 , wherein the data payload is encrypted during communications with the public network.
This real-time multipoint communication system, as described where a system uses multicast protocols and VPNs to deliver data efficiently without relying on a central server, encrypts the data payload during communication with the public network, providing enhanced security.
10. The system of claim 6 , further comprising at least one server configured to to instantiate one or more communication channels.
This real-time multipoint communication system, as described where a system uses multicast protocols and VPNs to deliver data efficiently without relying on a central server, includes at least one server capable of initiating communication channels. While designed for server-less operation, it retains the ability to incorporate servers for communication management.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
September 24, 2008
July 2, 2013
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.